CVE-2025-10385 | Mercury KM08-708H GiGA WiFi Wave2 1.1 /goform/mcr_setSysAdm sub_450B2C ChgUserId buffer overflow

September 13, 2025 Yanac

A vulnerability classified as critical has been found in Mercury KM08-708H GiGA WiFi Wave2 1.1. Affected by this issue is the function sub_450B2C of the file /goform/mcr_setSysAdm. The manipulation of the argument ChgUserId leads to buffer overflow.

This vulnerability is traded as CVE-2025-10385. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.VulDB Recent EntriesRead More